Facebook scam error for web app - facebook

I am testing an integration of Facebook with external web app under facebook canvas.
I got down to just having a simple HTML page, but still getting the SCAM error.
"Stop!
This is a browser feature intended for developers. If someone told you to copy-paste something here to enable a Facebook feature or "hack" someone's account, it is a scam and will give them access to your Facebook account.
For more information, see https://www.facebook.com/selfxss." in Chrome and similar message in Firefox.
The page is not displaying. I only can see "Cannot POST/fb_source=bookmark&ref=bookmarks&count=0&fb_bmpos=3_0"
My app is hosted on heroky and currently have just "HELLO APP NEW" text, no more.
GITHUB: git#heroku.com:better-you-v0-1.git
HEROKU: https://better-you-v0-1.herokuapp.com/#
What can be a reason for that?

That's a warning shown by Facebook to its users to prevent people tricking them into performing self-XSS attacks on themselves - it's not related to whatever problem you're having with your app

Related

How to use facebook mentions via API?

How to use facebook page mentions via Graph API?
I'm admin of the page and admin of the app, trying to mention page with # syntax on its feed.
POST 1111111111111/feed/
{
message: "Hello #[1111111111111]"
}
In this way, mention just striped. I'm tried to use my personal token, app token, page token. I have rights to publish_page, manage_page.
I tried to use #pagename, #[pagename], #page-id, #[page-id] etc...
What I'm doing wrong?
Thank you.
I get answer from Facebook support, they told us app should be in development mode to test this feature:
I have confirmed with the engineering team that the reason you cannot
use the Page Mentions is because your app is in Live mode, but it
hasn't been approved for that feature. The docs are a bit confusing, I
agree. According to the docs: "Usage of this feature is subject to
review. To test before review, use Pages you are an admin of (both to
make the API call, and to be used in a mention) and an app of which
you are a developer."
What this means is that you can test the feature while in Development
mode, but once the app goes Live, the feature will not work. In Live
mode, only features/permissions that your app has been approved for
will work. You can still submit an app that is in Live mode for app
review. Please see the Submission Tips for App Review for Live Apps:
https://developers.facebook.com/docs/apps/review/#submission-tips

Facebook APP is not available in the iOS Facebook-APP

Excuse me for the confusing title. We have programmed App which runs with in the Facebook. It can be accessed over the desktop/notebook browsers. However it is not accessible/available if I login to the Facebook app on my iPhone and go to the APP list. Following scenarios does not work.
1) If somebody sends me the invitation to use the APP using Facebook message. If I now login to the Facebook-app on my iPhone and go to the messages and click on the invitation, I see the error. "Page not found". This works perfectly if I login to Facebook using browser (on laptop or iPhone)
2) On my iPhone, in the Facebook APP, if go to list of my APPs then our APP is not available in that list. (Other apps like candy crush and so on can be found)
Are we missing some configuration?
Thanks in advance.
Best Regards
You are talking about a canvas app?
Those are not available on mobile, and never have been. But you can specify a Mobile Site URL in your canvas settings – users on mobile devices, that follow a link to your canvas app somewhere will then automatically be redirected to that external address.
Little cave-at: This has been disabled on a larger scale by Facebook recently, because some people where using it to redirect users to malware sites. Therefor now you have to get your app “white-listed” before this will work. Check this bug report, the FB engineer mentions are form where you can request this: https://developers.facebook.com/bugs/1051463851558493/

facebook external login not redirect back

I have a MVC5 application with external login. When I use Facebook login, after I put in my login information into facebook login page, facebook fails to direct me back to my application.
I got a white page with the following URL in Chrome's URL bar:
https://www.facebook.com/dialog/oauth?response_type=code&client_id=632877723495196&redirect_uri=http%3A%2F%2Flocalhost%2FMPOS%2Fsignin-facebook&scope=email&state=l2oJwWdkbRsgZHyr6-5lL9ZTZc-eMbRBkH73L-h1ZN_MWvWriNeEdCxuNspi4QptZAna60SQIJX4NB5AItzP6NxpDCz10m48JInWUfvQGWkgFgZhZNFIaTz6ju-kEQ-RyiObgiMOKvBougeeaSHD7CAzTrvc1Gj6XdGgGbUgyrM9d1KZUEGbqh_MdyBPg4wTFbQEiui-2GzvcIvhOVtTRC12NnhgnVyLCrrKEDFaWdU
If I use IE, I got "The website cannot display the page" error page with the following URL on the borwser's URL bar:
https://www.facebook.com/login.php?login_attempt=1&next=https%3A%2F%2Fwww.facebook.com%2Fv2.1%2Fdialog%2Foauth%3Fredirect_uri%3Dhttp%253A%252F%252Flocalhost%252FMPOS%252Fsignin-facebook%26state%3DWbWcYquZJnjvo8Db42l6goqpMUrioHL6HBVIUMu74QvqMuAjNzWizophJhNpf3NHCbw1-Dw1tsdgmv2h1f0ct1zcLJ_jlSXQ3ImCHVN_PXRkRedVB3gjTQb59-tbxPKxJQTuNhPvOKLq6aBjakP_fJDw5zXKZ55LrRzHVzEQ39Qff7WXsNJpke2BTHILHLI0I5jcWiXEgE-HeH7La19ttaL9LhrcyXP4DBiWaXuUNZc%26scope%3Demail%26response_type%3Dcode%26client_id%3D632877723495196%26ret%3Dlogin
Anyone has an answer to this problem? Thanks!
Thanks Nathan, clear cache on browser didn't help. I tried to clear cache/cookies on both IE and Chrome several times before I post the question.
The weird thing is that if I create an app under my personal facebook account and use the FacebookAppID/FacebookAppSecret for my app, the external login works fine. That's how I did all my testing.
But when I try to deploy the website I want to create the app under company's facebook account. I set up the app under the company's facebook account exactly the same way as I did when using my personal facebook account, then I got this redirect problem. If I switch back the FacebookAppID/FacebookAppSecret to the one I created under my personal account, everything works fine. That's even more puzzling.
I finally figured out the problem. I forgot to turn on "make this app and all its live features available to the general public" setting for the app I created in Facebook. So the login was only available to the developer who created the app. After I turn that setting on (it is under the Status and Review Tab), everything works fine.

How to send my app for review to Facebook?

I have written a desktop application and on the main interface there is a button to launch a Facebook status update form (it is a different program). In order for the status update to work, I need the publish_actions permission and for that I need to submit my app for review.
When I try to do that, it asks me to add a platform but when it comes to windows, it only accepts Windows 8 apps.
What can I do? Any help would be appreciated.
Hello I had the same problem and found the solution.
What you have to do is submit it as Website and state you are submitting a Desktop Application. I submitted as Website following a suggestion from the Facebook Team in a Bug Report.
However, at first they rejected my review submission with the standard message "Your Website does not support Facebook Login". I submitted again explaining I have a Desktop Application and I was choosing the Platform Website following their suggestion from that link, and then they read my step-to-step screenshot instructions, approved some of the items and gave me feedback on the others.
Good luck!

Facebook App On Mobile - View Notification - "Privacy check failed - You can not see that"

We've just developed a Facebook application which has a piece of functionality that allows you to post to a friends' wall. Fairly simple piece of functionality, and it's been working so far on the main www.facebook.com website. If I receive a notification that someone has posted on my timeline, and can click the link, and see the post. This is fine.
However, move to the iPhone app, or the mobile website, and it's not the same. I see the notification, click the link, and then see the following Facebook error message:
Privacy Check Failed
You can not see that.
Interestingly, in the mobile website, if I simply change the subdomain part of the URL in the address bar from
https://m.facebook.com/permalink.php?story_fbid=XXX&id=XXX
to
https://www.facebook.com/permalink.php?story_fbid=XXX&id=XXX
To access the full site, it works fine, and I can see the post (I've blanked the IDs for privacy).
After some research on the web, I can't anyone who has recently seen this message. Has anyone else seen it before? My instinct is telling me it's a bug with Facebook, but I want to check I'm not missing anything.